
Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in 
the application. 
Listing of Claims: 



20. (currently amended) A process for creating and managing pairs of 
asymmetrical cryptographic keys and associated certificates, each pair of 
asymmetrical cryptographic keys being intended for a subject managed by a computer 
system £1-), comprising: 

[[•]] searching in storage means [[(7)]] for at least one subject for which a pair of 
asymmetric keys and an associated certificate must be created; 

[[•]] creating at least one first individual r e qu e st for cr e ating and c e rtifying creation 
and certification request for a pair of asymmetric keys for said subject; 

[[•]] transmitting a key generation request corresponding to said first individual 

creation and certification request to a key generating center {8), which issues a 
pair of asymmetric keys in accordance with said key generation request; 
creating a public key for said subject, 

[[*]] creating at least one second individual r e quest for c e rtifying certification 
request for the public key created for said subject; and 

[[•]] transmitting a certification authority request corresponding to said second 

individual certification request to a certification authority (12), which issues 
and issuing a first certificate in accordance with said certification authority 
request. 



21. (currently amended) A process according to claim 20, further comprising 
creating a pair of keys must b e cr e at e d for a given subject when said subject lacks a 
pair of keys and a corresponding first individual creation and certification request, ef 
wh e n a pair of k e ys has boon r e qu e st e d for said subj e ct, or when th e a certificate of a 
pair of k e ys for said subject int e nd e d for an id e ntical us e has b ee n revoked and a now 
pair of keys has boon requested . 
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22. (original) A process according to claim 20, further comprising executing 
said process periodically. 

23. (currently amended) A process according to claim 20, wherein eaeh 
individual the first individual creation and certification request and the second 
individual certification request is are created from corresponding multiple creation 
and certification requests stored in the storage means (7) relative to a set of subjects 
belonging to a preset list or to a set of subjects defined by predetermined criteria, as 
well as to model pairs of keys and associated model certificates for the set in question. 

24. (currently amended) A process according to claim 21, wherein eaeh 
individual the first individual creation and certification request and the second 
individual certification request is are created from corresponding multiple creation 
and certification requests stored in the storage means (7) relative to a set of subjects 
belonging to a preset list or to a set of subjects defined by predetermined criteria, as 
well as to model pairs of keys and associated model certificates for the set in question. 

25. (currently amended) A process according to claim 22, wherein eaeh 
individual the first individual creation and certification request and the second 
individual certification request is are created from corresponding multiple creation 
and certification requests stored in the storage means (7) relative to a set of subjects 
belonging to a preset list or to a set of subjects defined by predetermined criteria, as 
well as to model pairs of keys and associated model certificates for the set in question. 

26. (currently amended) A process according to claim 23, further comprising 
searching in each of the multiple creation and certification requests of the system for 
all of the subjects in a condition such that a pair of keys must be created. 

27. (currently amended) A process according to claim 24, further comprising 
searching in each of the multiple creation and certification requests of the system for 
all of the subjects in a condition such that a pair of keys must be created. 
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28. (currently amended) A process according to claim 25, further comprising 
searching in each of the multiple creation and certification requests of the system for 
all of the subjects in a condition such that a pair of keys must be created. 

29. (currently amended) A process for creating and managing certificates for 
pairs of asymmetrical cryptographic keys, each certificate being intended for a pair of 
asymmetrical cryptographic keys for a subject managed by a computer system (4-), 
comprising: 

[[•]] searching in storage means £7) for at least one pair of asymmetric keys for the 

a public key for which a certificate must be created; 
[[•]] creating at least one individual certification request for certifying [[a]] the 

public key; and 

[[•]] transmitting a certification authority request corresponding to said individual 
certification request to a certification authority (12), which issu e s and issuing a 
first certificate in accordance with said certification authority request. 

30. (original) A process according to claim 29, further comprising creating 
the certificate for a given subject when said subject lacks a certificate and an 
individual certification request , or wh e n a c e rtificat e has be e n requ e st e d for said 
subj e ct, or wh e n th e c e rtificat e of a pair of k e ys for said subj e ct e xpir e s, or wh e n th e 
c e rtificato of a pair of keys has b ee n r e vok e d . 

3 1 . (currently amended) A process according to claim 29 , further comprising 
executing said process periodically. 

32. (currently amended) A process according to claim 30 , further comprising 
executing said process periodically. 

33. (currently amended) A process according to claim 30, further comprising 
creating the certificate for a given subject when the certificate expires during this 
period. 




34. (currently amended) A process according to claim 31, further comprising 
creating the new certificate for a given subject when the first certificate expires during 
this p e riod . 

35. (currently amended) A process according to claim 32, further comprising 
creating the a new certificate for a given subject when the first certificate expires 
during this period. 

36. (currently amended) A process according to claim 29, further comprising 
creating each individual request from a corresponding multiple certification request 
recorded in the storage means (7) relative to a set of pairs of keys for subjects 
belonging to a preset list or to a set of pairs of keys for subjects defined by 
predetermined criteria, as well as to associated model certificates for the set in 
question. 

37. (currently amended) A process according to claim 30, further comprising 
creating each individual request from a corresponding multiple certification request 
recorded in the storage means (7) relative to a set of pairs of keys for subjects 
belonging to a preset list or to a set of pairs of keys for subjects defined by 
predetermined criteria, as well as to associated model certificates for the set in 
question. 

38. (currently amended) A process according to claim 31, further comprising 
creating each individual request from a corresponding multiple certification request 
recorded in the storage means (7) relative to a set of pairs of keys for subjects 
belonging to a preset list or to a set of pairs of keys for subjects defined by 
predetermined criteria, as well as to associated model certificates for the set in 
question. 

39. (currently amended) A process according to claim 33, further comprising 
creating each individual request from a corresponding multiple certification request 
recorded in the storage means (7) relative to a set of pairs of keys for subjects 
belonging to a preset list or to a set of pairs of keys for subjects defined by 
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predetermined criteria, as well as to associated model certificates for the set in 
question. 

40. (currently amended) A process according to claim 36 A further comprising 
searching in each of the multiple certification requests of the system for all of the 
subjects in a condition such that a certificate must be created. 

41 . (currently amended) A process according to claim 37 a further comprising 
searching in each of the multiple certification requests of the system for all of the 
subjects in a condition such that a certificate must be created. 

42. (currently amended) A process according to claim 3 8 A further comprising 
searching in each of the multiple certification requests of the system for all of the 
subjects in a condition such that a certificate must be created. 

43. (currently amended) A process according to claim 3 9 A further comprising 
searching in each of the multiple certification requests of the system for all of the 
subjects in a condition such that a certificate must be created. 

44. (currently amended) A process according to claim 20, charact e riz e d in 
that wherein each multiple request comprises an attribute relative to at least one 
execution date and in that said process consists of including in the search only the 
multiple requests whose expiration date has arrived. 

45. (currently amended) A process according to claim 20, charact e rized in 
that it consists of further comprising performing the encoding of one or more 
extensions in accordance with one or more given rules and of entering the encoded 
extension or extensions into the individual certification request during the creation of 
said individual certification request. 

46. (currently amended) A process according to claim 20, further comprising 
changing the value of an attribute contained in each of the individual first and second 
requests to indicate status of the process. 




47. (currently amended) A computer system {4} for creating and managing 
pairs of asymmetrical cryptographic keys and certificates associated with the pairs of 
keys, the pairs of keys and the certificates being intended for subjects managed by 
said system, comprising: 

a key generating center £8) for creating at least one pair of keys at the request 
of the a local registration authority with which the key generating center 
communicates; 

at least one certification authority £1-3) to which the system has access for 
creating a certificate at the request of the local registration authority; (§) and 

means for automating the creation and/or certification of at least one pair of 
keys for each subject managed by the system £4-). 

48. (currently amended) A computer system (4-) according to claim 47, 
further comprising: 

[[•]] a central management service (3) for creating, updating and consulting objects 
and subjects managed by said system; 

[[•]] a local registration authority (£) for handling the creation and/or the 
certification of keys intended for the objects and the subjects; 

[[•]] a central security base £7) containing the subjects and the objects managed by 
the system with which the local registration authority communicates; 
[[•]] a key generating center (8) for creating at least one pair of keys at the request 
of the local registration authority (5) with which the key generating center 
communicates; and 

at least one certification authority (4-2) to which the system has access for 
creating a certificate at the request of the local registration authority (§). 

49. (currently amended) A computer system according to claim 47, including 
further comprising a wake up mechanism (6) for periodically waking up the local 
registration authority (§). 

50. (currently amended) A computer system according to claim 48 a including 
further comprising a wake up mechanism (6) to periodically wak e waking up the local 
registration authority (§). 
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5 1 . (currently amended) A process for creating and managing symmetrical 
cryptographic keys, wherein a symmetrical cryptographic key can be used to both 
encode and decode data, and wherein each key b e ing is intended for a subject 
managed by a computer system (4-), charact e riz e d in that it consists of comprising : 
[[*]] searching in storage means (7) for at least one subject for which a symmetric 
key must be created; 

[[•]] creating at least one individual request for creating a symmetric key for said 
subject; 

[[•]] transmitting a key generating request corresponding to said individual creation 
request to a key generating center (8), and 

[[•]] issuing by said key generating center a symmetric key in accordance with said 
transmitted key generating request. 

52. (currently amended) A computer system £1-) for creating symmetrical 
cryptographic keys, wherein a symmetrical cryptographic key can be used to both 
encode and decode data, and wherein said system for managing manages subjects by 
said syst e m , characterized in that it comprises a key generating center (8) for creating 
at least one pair of keys at the request of the local registration authority (#) with which 
the key generating center communicates; at least one certification authority (43) to 
which the system has access for creating a certificate at the request of the local 
registration authority (S) and means for automating the creation of at least one key for 
each subject managed by the system £4-). 

53. (new) A process according to claim 20, further comprising creating a pair 
of keys for a given subject when a certificate issued in response to a certification 
authority request for a pair of keys for said subject intended for an identical use has 
been revoked and a new pair of keys has been requested. 

54. (new) A process according to claim 29, further comprising creating a pair 
of keys for a given subject when a certificate issued in response to a certification 
authority request for a pair of keys for said subject intended for an identical use has 
been revoked and a new pair of keys has been requested. 
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